Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Abnormal traffic monitoring method for distributed control system

A distributed control system, abnormal flow technology, applied in transmission systems, electrical components, etc., can solve the problems of unbalanced development, large differences, and increased repetitive labor investment costs, so as to improve detection accuracy, reduce false alarm rates, prevent Effects of worm outbreaks

Active Publication Date: 2018-06-29
CHINA AEROSPACE SYST ENG
View PDF5 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] For the abnormal monitoring of the distributed control system (DCS), due to the diversity and complexity of the process flow of various industries, the structure, components and interfaces of the distributed control system adopted are not consistent, and the differences are quite large
Domestic research on the abnormal monitoring technology of distributed control systems is restricted by the technical level of various industries, and the development is extremely unbalanced. The generality of related products in the market is not high, and secondary development such as custom development and source code causes repetitive human investment costs. increase

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Abnormal traffic monitoring method for distributed control system
  • Abnormal traffic monitoring method for distributed control system
  • Abnormal traffic monitoring method for distributed control system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0039] The present invention will be described in further detail below in conjunction with the accompanying drawings and specific embodiments.

[0040] Such as figure 1 As shown, a method for monitoring abnormal traffic in a distributed control system, the abnormal traffic refers to whether the network traffic between the upper computer and the controller of the DCS system is abnormal; when the abnormal traffic reaches a certain critical amount, that is A worm outbreak can be identified; the methods include:

[0041] Step 1) set up a hidden Markov model based on time series analysis;

[0042] The essence of large-scale network traffic anomaly discovery technology is to look for abnormal changes in the characteristics of the network itself, that is, within a certain time and space range, the characteristics of the network itself will undergo obvious changes, even drastic changes. Since the propagation of unknown malicious codes on industrial networks has considerable complexi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an abnormal traffic monitoring method for a distributed control system. The method comprises the following steps: step 1) establishing a hidden Markov model based on time series analysis; step 2) collecting network traffic; step 3) preprocessing the traffic; step 4) performing optimal estimation on components of a state vector of the model by using a recursive algorithm based on Kalman filtering; and step 5) comparing the optimal estimated value with a set threshold, if the optimal estimated value is greater than the threshold, deeming that the network traffic is abnormal, otherwise, entering step 1). By adoption of the abnormal traffic monitoring method based on structural time series analysis provided by the invention, the industrial Ethernet traffic is divided into different components, hierarchical modeling is performed on the complex network traffic under the assistance of a state space model, thereby effectively improving the industrial network traffic detection accuracy, reducing the false alarm rate and effectively preventing the outbreak of worms.

Description

technical field [0001] The invention belongs to the field related to industrial control information security, in particular to an abnormality monitoring method oriented to a distributed control system. Background technique [0002] The application of industrial control system (ICS) is a large-scale control system closely combining information technology and industry professional technology, with the goal of improving the operation, management, and resource utilization efficiency of industrial control systems. With the development of computer technology, communication technology and control technology, the traditional control field is undergoing an unprecedented change, and it is beginning to develop in the direction of networking. The structure of the control system has developed from the initial computer centralized control system (CCS) to the second generation of distributed control system (DCS). Since DCS came out in 1975, it has experienced more than 40 years of develop...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1425H04L63/145
Inventor 曾伟兵石慧梁金义王志先房旭赵东伟吴荫鸿
Owner CHINA AEROSPACE SYST ENG
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com